Master Web Access Management / IAM Engineer

About The Position

Requirements

• 10+ years of hands-on IAM experience , with at least 5 years in a lead or architectural role.
• Deep expertise in 3+ IAM platforms (e.g., Okta, Auth0, Entra ID, PingFederate, ForgeRock, SiteMinder).
• Proven experience with modern authentication protocols (SAML, OAuth, OIDC) and provisioning standards (SCIM, JIT).
• Working knowledge of directory services including Active Directory, Okta Universal Directory (UD), CA Directory and general LDAP/LDIF usage.
• Experience with reverse proxies including Apache and NGINX, Linux operating system, general load balancing and networking concepts.
• Demonstrated ability to lead large-scale IAM migrations (e.g., legacy to cloud-native platforms, coexistence, user migration).
• Excellent stakeholder management, communication, and mentoring skills.

Nice To Haves

• Experience with cloud-native IAM (Azure AD, AWS IAM, GCP Cloud Identity) and hybrid identity models.
• Knowledge of Identity Governance and Administration (IGA) and privileged access management (PAM) .
• Familiarity with DevOps/CI-CD pipelines and IAM automation tools (e.g., Terraform, Ansible).
• Knowledge of wealth management or financial services regulatory environments.
• Certifications preferred: CISSP, CCSP, or vendor-specific certifications (e.g., Okta Certified Administrator, Microsoft Certified: Identity and Access Administrator).

Responsibilities

• Technical Leadership & Architecture : Define and execute the IAM roadmap, aligning with enterprise security goals, regulatory requirements (FINRA/SEC), and business needs.
• Platform Expertise : Architect, implement, and optimize IAM solutions across multiple platforms (e.g., Okta, Auth0, Azure AD/Entra ID, SiteMinder, or equivalent), including Web Access Management (WAM), Single Sign-On (SSO), and Identity Governance and Administration (IGA).
• Modern Authentication & Integration : Lead initiatives for modern authentication protocols (SAML, OAuth, OpenID Connect, JIT/SCIM) and integrate IAM solutions with SaaS, cloud, and on-premises applications.
• Mentorship & Governance : Mentor junior engineers, establish IAM best practices, and ensure compliance with enterprise standards. Guide teams in migrating from legacy WAM systems to modern platforms.
• Cross-Functional Collaboration : Partner with enterprise architects, security teams, and business units to design and deliver IAM solutions that balance security and usability.
• Vendor & Stakeholder Management : Act as a liaison with vendors, clients, and internal teams to drive SSO integrations, troubleshoot complex issues, and manage relationships.
• Innovation & Trends : Stay ahead of IAM trends (e.g., passwordless authentication, Zero Trust), evaluate emerging tools, and lead proof-of-concept initiatives.
• Operational Excellence : Oversee platform administration, documentation, and incident resolution for IAM systems, ensuring high availability and performance.

Benefits

• A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable.
• Leaders who support your development through coaching and managing opportunities.
• Ability to make a difference and lasting impact.
• Work in a dynamic, collaborative, progressive, and high-performing team.
• A world-class training program in financial services.